// CVE Tracker
152 active CVEs โ page 7 of 7, sorted unpatched-first by CVSS
85
CRITICAL
66
HIGH
152
TOTAL ACTIVE
146
PATCHED
CVE-2026-20262
Cisco Catalyst SD-WAN Manager โ Arbitrary File Overwrite via Malicious Upload Enables Root Privilege Escalation
A file path validation flaw in the web-based management interface of Cisco Catalyst SD-WAN Manager (formerly vManage) allows an authenticated attacker to upload a file to an arbitrary location on the underlying operating system, bypassing the intended upload directory boundary. An attacker with network-operator role privileges โ a standard operational credential โ can overwrite OS files referenced during service startup or scheduled tasks and execute commands as root. CISA added CVE-2026-20262 to the Known Exploited Vulnerabilities catalogue on 16 June 2026, confirming active in-the-wild exploitation.
CVE-2026-32201
Microsoft SharePoint Server โ Spoofing / Information Disclosure (Actively Exploited Zero-Day)
A spoofing vulnerability in Microsoft SharePoint Server allows an authenticated attacker to view sensitive information beyond their authorised scope and make unauthorised modifications to disclosed content, bypassing SharePoint's information barrier and permission controls. The vulnerability was under active exploitation before a patch was available; CISA added it to the Known Exploited Vulnerabilities catalogue on 14 April 2026, the day before Microsoft released the patch in April 2026 Patch Tuesday. The one-day gap between KEV addition and patch release required organisations to make explicit risk acceptance or compensating control decisions.
Note: CVE data is curated manually from NVD, vendor advisories, and security research. CVSS scores reflect NVD base scores at time of entry. Always verify with official vendor advisories before actioning.